Dark Reading

OAuth+XSS Attack Threatens Millions of Web Users With Account Takeover

Critical API security flaws have put millions of users at risk for account takeover, by using a modern authentication standard to resurrect a longtime vulnerability. The bugs were found in the Hotjar ...
CSOonline

A third of web attacks targeted APIs in 2023, threatening the expanding API economy

API security often receives inadequate attention, either overlooked in early planning stages or failing to match the pace of rapid technological deployment. APIs were the target of 29% of web attacks ...